Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/217e97-6b2c-4a5d-915b-949c628e5f3c/1/XX2xSVjPTXheWe9cbGefjvVMHYs.mft
File: XX2xSVjPTXheWe9cbGefjvVMHYs.mft (raw, json)
Hash identifier: 2di8O9PAEGuEqsHy4NQdMY3ZMCl7MfEsJF2rVVojpLY=
Subject key identifier: E2:DC:C6:F3:C8:2C:1B:0A:0E:86:98:CB:80:E4:89:63:A9:46:C2:30
Authority key identifier: 5D:7D:B1:49:58:CF:4D:78:5E:59:EF:5C:6C:67:9F:8E:F5:4C:1D:8B
Certificate issuer: /CN=5d7db14958cf4d785e59ef5c6c679f8ef54c1d8b
Certificate serial: 01987DF863F4639042B46322712C640EC4F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XX2xSVjPTXheWe9cbGefjvVMHYs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/217e97-6b2c-4a5d-915b-949c628e5f3c/1/XX2xSVjPTXheWe9cbGefjvVMHYs.mft
Manifest number: 0604
Signing time: Wed 06 Aug 2025 06:01:26 +0000
Manifest this update: Wed 06 Aug 2025 06:01:26 +0000
Manifest next update: Thu 07 Aug 2025 06:01:26 +0000
Files and hashes: 1: XX2xSVjPTXheWe9cbGefjvVMHYs.crl (hash: 3H8iVmnH52dHWwHD6YSAsCYVV2LpZ9eTCJELaFn4DLE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/217e97-6b2c-4a5d-915b-949c628e5f3c/1/XX2xSVjPTXheWe9cbGefjvVMHYs.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/217e97-6b2c-4a5d-915b-949c628e5f3c/1/XX2xSVjPTXheWe9cbGefjvVMHYs.mft
rsync://rpki.ripe.net/repository/DEFAULT/XX2xSVjPTXheWe9cbGefjvVMHYs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 06:01:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7d:f8:63:f4:63:90:42:b4:63:22:71:2c:64:0e:c4:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d7db14958cf4d785e59ef5c6c679f8ef54c1d8b
Validity
Not Before: Aug 6 06:01:26 2025 GMT
Not After : Aug 7 06:01:26 2025 GMT
Subject: CN=e2dcc6f3c82c1b0a0e8698cb80e48963a946c230
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:21:fa:2b:86:65:08:0f:64:a7:16:0b:8d:59:
03:5b:55:9f:f5:d8:1e:a2:75:dd:ba:39:ea:ca:be:
23:24:f5:f3:e7:09:73:97:3b:54:dc:2f:ab:07:38:
3b:38:4e:be:79:3d:5a:77:cf:b6:a6:56:11:8f:71:
3b:33:07:a0:a4:ea:c1:f4:a3:1f:7b:9f:d2:de:aa:
ab:ca:8d:27:24:21:7b:97:05:0b:f7:01:71:d8:75:
89:9b:fa:44:0b:7d:21:9c:55:98:14:51:d5:8d:d8:
69:ad:8c:9b:9f:91:64:11:54:fe:b4:c7:43:15:22:
ca:a5:32:e4:23:7e:14:57:c7:68:99:fd:88:a0:78:
f2:63:ac:62:11:8d:e1:58:48:a9:ce:14:d4:b0:12:
fa:ff:47:55:54:34:d8:eb:ea:14:8b:70:16:e4:c2:
cc:4b:ad:3c:e6:7f:0e:21:75:d1:fc:c2:9b:00:4b:
c8:ef:82:f9:a5:7f:56:5e:b7:ac:7d:fb:22:e1:b1:
e6:a4:a0:1c:6a:a9:c7:4a:20:70:86:45:51:d1:b1:
3b:36:55:27:cd:86:ce:19:9e:3c:4c:0c:d5:e6:cc:
86:60:de:7b:f0:29:c1:d8:69:ee:d7:f3:df:4d:ab:
4b:de:d0:f7:10:d0:f8:2b:96:62:59:6b:d6:ea:bd:
8c:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:DC:C6:F3:C8:2C:1B:0A:0E:86:98:CB:80:E4:89:63:A9:46:C2:30
X509v3 Authority Key Identifier:
keyid:5D:7D:B1:49:58:CF:4D:78:5E:59:EF:5C:6C:67:9F:8E:F5:4C:1D:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XX2xSVjPTXheWe9cbGefjvVMHYs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/217e97-6b2c-4a5d-915b-949c628e5f3c/1/XX2xSVjPTXheWe9cbGefjvVMHYs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/217e97-6b2c-4a5d-915b-949c628e5f3c/1/XX2xSVjPTXheWe9cbGefjvVMHYs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:ac:02:ca:a6:02:96:03:05:75:d0:a2:44:46:71:42:fc:b8:
d5:ad:49:63:f4:72:90:f4:e9:99:4e:68:d9:d5:16:58:ec:f5:
73:f8:69:89:55:41:fa:be:40:d3:85:91:7b:7c:93:26:d2:c8:
59:31:61:91:3a:96:04:a0:70:5a:50:6b:f5:60:90:9a:ce:3e:
4b:68:e2:de:70:40:b5:b5:29:3b:3d:d0:5a:a3:88:dc:70:a6:
4c:5a:cc:61:20:67:56:39:2c:79:cf:ff:82:2d:58:0e:5f:eb:
36:f5:be:0d:ac:6b:c5:67:3f:ce:32:ac:df:60:77:24:c3:2e:
48:67:97:59:dd:76:b2:e7:23:dc:21:7c:7f:b0:b5:e3:42:b1:
11:92:1b:78:66:09:8a:34:dd:29:58:59:68:d3:ca:a8:f8:4b:
6f:75:e1:20:80:0a:46:74:61:26:e7:12:cd:66:92:a6:9e:99:
89:8f:44:3e:d7:8e:b2:10:91:5a:71:b7:b9:f9:44:13:79:a2:
ae:e2:19:42:48:32:12:96:d1:ca:39:06:8b:ed:a8:d0:ab:f5:
25:51:f3:b9:c4:7c:ab:b1:1e:4e:1b:87:c2:94:89:eb:3a:c2:
53:3f:70:29:fa:a2:1c:35:ff:68:e2:b9:94:cd:fe:48:42:c0:
33:34:84:69
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZh9+GP0Y5BCtGMicSxkDsT1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVkN2RiMTQ5NThjZjRkNzg1ZTU5ZWY1YzZjNjc5ZjhlZjU0
YzFkOGIwHhcNMjUwODA2MDYwMTI2WhcNMjUwODA3MDYwMTI2WjAzMTEwLwYDVQQD
EyhlMmRjYzZmM2M4MmMxYjBhMGU4Njk4Y2I4MGU0ODk2M2E5NDZjMjMwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3CH6K4ZlCA9kpxYLjVkDW1Wf9dge
onXdujnqyr4jJPXz5wlzlztU3C+rBzg7OE6+eT1ad8+2plYRj3E7MwegpOrB9KMf
e5/S3qqryo0nJCF7lwUL9wFx2HWJm/pEC30hnFWYFFHVjdhprYybn5FkEVT+tMdD
FSLKpTLkI34UV8domf2IoHjyY6xiEY3hWEipzhTUsBL6/0dVVDTY6+oUi3AW5MLM
S6085n8OIXXR/MKbAEvI74L5pX9WXresffsi4bHmpKAcaqnHSiBwhkVR0bE7NlUn
zYbOGZ48TAzV5syGYN578CnB2Gnu1/PfTatL3tD3END4K5ZiWWvW6r2MdwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOLcxvPILBsKDoaYy4DkiWOpRsIwMB8GA1UdIwQY
MBaAFF19sUlYz014XlnvXGxnn471TB2LMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWFgyeFNWalBUWGhlV2U5Y2JHZWZqdlZNSFlzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMC8yMTdlOTctNmIyYy00YTVkLTkxNWIt
OTQ5YzYyOGU1ZjNjLzEvWFgyeFNWalBUWGhlV2U5Y2JHZWZqdlZNSFlzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMC8yMTdlOTctNmIyYy00YTVkLTkxNWItOTQ5YzYyOGU1ZjNj
LzEvWFgyeFNWalBUWGhlV2U5Y2JHZWZqdlZNSFlzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATKwCyqYC
lgMFddCiREZxQvy41a1JY/RykPTpmU5o2dUWWOz1c/hpiVVB+r5A04WRe3yTJtLI
WTFhkTqWBKBwWlBr9WCQms4+S2ji3nBAtbUpOz3QWqOI3HCmTFrMYSBnVjksec//
gi1YDl/rNvW+DaxrxWc/zjKs32B3JMMuSGeXWd12sucj3CF8f7C140KxEZIbeGYJ
ijTdKVhZaNPKqPhLb3XhIIAKRnRhJucSzWaSpp6ZiY9EPteOshCRWnG3uflEE3mi
ruIZQkgyEpbRyjkGi+2o0Kv1JVHzucR8q7EeThuHwpSJ6zrCUz9wKfqiHDX/aOK5
lM3+SELAMzSEaQ==
-----END CERTIFICATE-----
Generated at Wed Aug 6 16:05:53 2025 by rpki-client